<html><head></head><body data-blackberry-caret-color="#00a8df" style="background-color: rgb(255, 255, 255); line-height: initial;"><div id="BB10_response_div" style="width: 100%; font-size: initial; font-family: Calibri, 'Slate Pro', sans-serif; color: rgb(31, 73, 125); text-align: initial; background-color: rgb(255, 255, 255);">Dear,</div><div style="width: 100%; font-size: initial; font-family: Calibri, 'Slate Pro', sans-serif; color: rgb(31, 73, 125); text-align: initial; background-color: rgb(255, 255, 255);"><br></div><div style="width: 100%; font-size: initial; font-family: Calibri, 'Slate Pro', sans-serif; color: rgb(31, 73, 125); text-align: initial; background-color: rgb(255, 255, 255);">The job of Afrinic should be completely Limited to assigning a reasonable block of IP Addresses. The continual attempts to engineer the IP Addresses or dictate how a network uses them internally should be left to the end user. </div><div style="width: 100%; font-size: initial; font-family: Calibri, 'Slate Pro', sans-serif; color: rgb(31, 73, 125); text-align: initial; background-color: rgb(255, 255, 255);"><br></div><div style="width: 100%; font-size: initial; font-family: Calibri, 'Slate Pro', sans-serif; color: rgb(31, 73, 125); text-align: initial; background-color: rgb(255, 255, 255);">Like Andrew has highlighted, the proposed section of the policy has just completely crossed the line. </div><div style="width: 100%; font-size: initial; font-family: Calibri, 'Slate Pro', sans-serif; color: rgb(31, 73, 125); text-align: initial; background-color: rgb(255, 255, 255);"><br></div><div style="width: 100%; font-size: initial; font-family: Calibri, 'Slate Pro', sans-serif; color: rgb(31, 73, 125); text-align: initial; background-color: rgb(255, 255, 255);">Regards,</div><div style="width: 100%; font-size: initial; font-family: Calibri, 'Slate Pro', sans-serif; color: rgb(31, 73, 125); text-align: initial; background-color: rgb(255, 255, 255);">Ademola Osindero </div><div style="width: 100%; font-size: initial; font-family: Calibri, 'Slate Pro', sans-serif; color: rgb(31, 73, 125); text-align: initial; background-color: rgb(255, 255, 255);"><br></div> <div id="_signaturePlaceholder" style="font-size: initial; font-family: Calibri, 'Slate Pro', sans-serif; color: rgb(31, 73, 125); text-align: initial; background-color: rgb(255, 255, 255);"> </div> <table width="100%" style="background-color:white;border-spacing:0px;"> <tbody><tr><td id="_persistentHeaderContainer" colspan="2" style="font-size: initial; text-align: initial; background-color: rgb(255, 255, 255);"> <div id="_persistentHeader" style="border-style: solid none none; border-top-color: rgb(181, 196, 223); border-top-width: 1pt; padding: 3pt 0in 0in; font-family: Tahoma, 'BB Alpha Sans', 'Slate Pro'; font-size: 10pt;"> <div><b>From: </b>Andrew Alston</div><div><b>Sent: </b>Tuesday, September 10, 2013 7:50 PM</div><div><b>To: </b>Keshwarsingh Nadan; rpd@afrinic.net</div><div><b>Subject: </b>Re: [AFRINIC-rpd] RE: IPv4 Address Allocation and Assignment proposal</div></div></td></tr></tbody></table><div id="_persistentHeaderEnd" style="border-style: solid none none; border-top-color: rgb(186, 188, 209); border-top-width: 1pt; font-size: initial; text-align: initial; background-color: rgb(255, 255, 255);"></div><br><div id="_originalContent" style="">I only want to really comment at this point on one section of thisŠ<br><br>> An RIR may also request remote access to the network in question but not<br>>be limited to:<br>><br>>- Colocation customer equipment (Hypervisors, Routers, Servers, Switches).<br>>- Core routers.<br>>- DHCP servers.<br>>- Hypervisors.<br>><br><br>NO NO NO NO NO NO NO NEVER IN A MILLION YEARS<br><br>I am pretty sure if RIPE or ARIN demanded access to the confidential<br>networks of any applicant they would be told to take a flying leap, and I<br>would REALLY hope that the same would apply in Africa. It is *NOT* the<br>job of an RIR to be the IP police, it is *NOT* the job of an RIR to have<br>access to the internal workings of any ISP's network, it is *NOT* the job<br>of an RIR to evaluate design, it is *NO BUSINESS* of the RIR to have<br>access to the internal configurations of any of its members.<br><br>The RIR staff are NOT and are not MEANT to be network engineers, nor do I<br>believe they have the skill or the training to adequately deal with such<br>access. Furthermore, the confidentiality agreements in the MSA are in NO<br>way sufficient to cover this. In addition, the security concerns and<br>flaws this would raise are immense, you're gonna hand external access to a<br>third party to the core routers of an major ISP from external addresses<br>that may or may not be adequately protected themselves? Give me a break.<br><br>In addition to thisŠ you want members to grant the RIR access to their<br>CUSTOMERS equipment? On what planet does an AfriNIC member have the right<br>or the authority to grant AfriNIC access to third party equipment?<br><br>SorryŠ but let me forget diplomacy for a whileŠ what exactly have you been<br>smoking?<br><br>Andrew<br><br><br>_______________________________________________<br>rpd mailing list<br>rpd@afrinic.net<br>https://lists.afrinic.net/mailman/listinfo.cgi/rpd<br></div></body></html>